binary-mcp
Verified Safeby Sarks0
Overview
Provides AI assistants with binary analysis capabilities via Ghidra, ILSpyCmd, and x64dbg for security research and reverse engineering.
Installation
uv --directory /absolute/path/to/binary-mcp run python -m src.serverEnvironment Variables
- GHIDRA_HOME
- GHIDRA_TIMEOUT
- GHIDRA_FUNCTION_TIMEOUT
- GHIDRA_MAX_FUNCTIONS
- GHIDRA_SKIP_DECOMPILE
- X64DBG_HOST
- X64DBG_PORT
- X64DBG_TIMEOUT
- VT_API_KEY
Security Notes
The server demonstrates strong security awareness, especially regarding path traversal and command injection. It uses `sanitize_binary_path` and `sanitize_output_path` extensively, and `subprocess.run` calls are configured with `shell=False`. The x64dbg bridge communicates via localhost by default and uses a secure token. Inputs are validated (e.g., `validate_dotnet_type_name`, `safe_regex_compile`). Running external binaries and processing untrusted inputs inherently carries risks, but this project takes substantial measures to mitigate them. Default output directories are within the user's home directory.
Similar Servers
octocode-mcp
The Octocode Research server enables AI agents to perform expert code forensics and deep-dive research across local filesystems (LSP, ripgrep, file I/O) and external GitHub repositories (code search, repo structure, pull requests, package search). It's optimized for architectural analysis, pattern discovery, and implementation planning.
reverse-engineering-assistant
Provides an MCP (Model Context Protocol) server to expose Ghidra's reverse engineering capabilities for AI models and automated binary analysis in a headless environment.
GhidrAssistMCP
This Ghidra extension provides an MCP server, enabling AI assistants and other tools to interact with Ghidra's reverse engineering capabilities through a standardized API, supporting program analysis, modification, and navigation.
burp-mcp-agents
Connects Burp Suite MCP Server to AI backends (Codex, Gemini, Ollama, LM Studio) for assisted, non-destructive vulnerability analysis using real Burp traffic.